We are in the process of building a secure network reference architecture for member firms as guidance. Are there any good examples I can use?

IT Strategy & Roadmap Security Frameworks (NIST, CIS, CSF)

1.6k views2 Comments

Sort by:

Head of PMOa year ago

There's some material on this on NCSC's website. One page of which is: Architecture and configuration - NCSC.GOV.UK and there is more if you search the site. I've seen various examples at the different public authorities where I've worked over the years but they are rarely distributed widely.

VP of IT in Retaila year ago

I would focus on NIST and ISO/IEC 27001.

The NIST Framework - The National Institute of Standards and Technology (NIST) provides a framework for improving critical infrastructure cybersecurity. The NIST framework is notable for its focus on risk management and its adaptability, allowing it to be applied in a variety of contexts.

ISO/IEC 27001 - ISO/IEC 27001 is an international standard for information security. It provides a set of standardized requirements for an Information Security Management System (ISMS). The standard adopts a process-based approach for establishing, implementing, operating, monitoring, maintaining, and improving your ISMS.

Content you might like

How many 3rd party antivirus products do you have on a user's PC?

None13%

0 - Rely on built in defender AV47%

133%

2 or more5%

View Results

Has your company made you feel comfortable about the prospect of returning to the office?

Yes - My company has been clear with the back to office plan82%

No - Messaging around return to the office has been confusing and disjointed17%

How can IT make sure a formerly remote org is ready for a return to office? If you’ve gone through this, what areas needed the most prep before RTO?

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP.

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

We are in the process of building a secure network reference architecture for member firms as guidance. Are there any good examples I can use?

Sort by:

Content you might like

How many 3rd party antivirus products do you have on a user's PC?

Has your company made you feel comfortable about the prospect of returning to the office?

How can IT make sure a formerly remote org is ready for a return to office? If you’ve gone through this, what areas needed the most prep before RTO?

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP.

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

2024 Cloud Spending: IT Balances Costs with GenAI Innovations

Are U.S. Organizations Insuring Against CISO Liability Risk?

Building an Effective Executive Succession Plan

Take Your Insights On-the-Go